This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft File: okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft (raw, json) Hash identifier: L14NUPXSD15Cw0hYYMK9QHRV+nqYko7wtcYfDjXhF00= Subject key identifier: EF:9A:4A:8D:D9:DA:9F:5E:4F:7C:05:8E:B4:D2:02:1A:21:BC:A6:A1 Authority key identifier: A2:43:57:BE:19:58:79:6B:12:C4:2B:4F:4C:AC:51:B8:3D:E8:FD:2B Certificate issuer: /CN=a24357be1958796b12c42b4f4cac51b83de8fd2b Certificate serial: 019C4390962435F6BC952AF1B700DA453B03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft Manifest number: 02C7 Signing time: Mon 09 Feb 2026 18:01:14 +0000 Manifest this update: Mon 09 Feb 2026 18:01:14 +0000 Manifest next update: Tue 10 Feb 2026 18:01:14 +0000 Files and hashes: 1: Cyd9epktZUP2NzDWt7kuBmj63qY.roa (hash: 4Hn7SVvllIET4/FJbhg9Vi4tqF9x0RkLIB5CUH+jolo=) 2: okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl (hash: YP2XxJRTJWs8Bs5hNVlEYTxnHE8WW8b1/oYYhBZBBjs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:96:24:35:f6:bc:95:2a:f1:b7:00:da:45:3b:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a24357be1958796b12c42b4f4cac51b83de8fd2b Validity Not Before: Feb 9 18:01:14 2026 GMT Not After : Feb 10 18:01:14 2026 GMT Subject: CN=ef9a4a8dd9da9f5e4f7c058eb4d2021a21bca6a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:80:3a:b6:6b:97:15:a8:bf:d8:45:dc:a4:21: 19:2a:f5:2f:4f:b4:14:b7:15:b0:c9:0e:21:8b:58: 4a:aa:3e:b3:9e:06:59:4e:3e:a4:26:52:e0:32:00: 35:e9:8f:4d:29:12:d4:02:de:d1:fe:e3:ad:e6:62: 41:e8:6f:e6:9d:91:d2:53:d5:95:3c:f2:8b:c3:72: 61:a7:17:29:ce:49:12:c0:b2:d9:59:43:24:b6:3e: e2:c3:99:ec:21:9b:09:70:6f:6d:e1:ba:2b:7a:59: cd:1c:fe:41:7c:86:55:f1:05:4c:49:1d:d8:97:c8: c0:b4:28:7b:5a:50:8f:7c:03:08:de:24:da:7c:2c: 9d:3a:bb:26:fb:47:9d:c4:57:e3:63:57:eb:79:17: e3:36:e0:e7:66:9d:6d:fb:6e:3b:7b:a3:1e:37:0f: a3:6f:a7:4f:45:b5:27:ca:22:4d:15:6d:90:aa:96: 95:ee:34:b6:8c:be:10:2a:16:41:3a:38:e3:ed:cb: 0a:d8:fb:86:d7:eb:52:1e:e0:bf:1f:da:4f:f8:19: 0e:f1:c2:f7:a5:41:3c:14:20:52:4e:1b:71:6c:56: cf:33:17:77:cc:24:8e:73:e0:40:63:5f:b4:98:a5: 64:12:69:3c:d9:f9:f2:15:fa:74:d7:e6:85:40:77: b5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:9A:4A:8D:D9:DA:9F:5E:4F:7C:05:8E:B4:D2:02:1A:21:BC:A6:A1 X509v3 Authority Key Identifier: keyid:A2:43:57:BE:19:58:79:6B:12:C4:2B:4F:4C:AC:51:B8:3D:E8:FD:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:c7:9f:e8:b5:bd:49:29:91:6e:6c:eb:03:2c:cf:d2:4b:2e: 0f:ba:61:22:d3:3b:52:a1:1e:fa:35:07:4d:aa:e3:a3:6f:19: a4:90:f9:80:2a:66:85:db:79:f4:c1:30:db:a3:c0:ec:66:53: 3d:d8:f2:2f:1d:76:78:6b:f5:02:eb:d8:3f:bf:1f:c9:ff:a5: 5b:c3:79:6a:75:59:ce:f5:5b:cf:a6:b8:f7:ef:e0:72:64:8e: 15:9c:0e:e8:dd:88:20:d8:7d:71:8e:ce:49:dc:72:a5:7a:28: d3:e3:74:03:51:0c:d1:e6:b6:10:3c:d8:2d:cf:a8:ac:43:23: 9a:c9:44:b4:84:e9:ba:ea:c0:8f:d5:4d:51:1d:01:5f:53:cb: 69:fd:5d:27:e8:cd:9b:d9:06:51:33:64:9b:5f:6a:af:55:6c: da:bc:41:0d:8c:64:df:7e:e3:51:62:8b:c0:8a:ac:ff:48:a3: 7b:73:2e:3e:a7:e1:2a:9f:53:51:a0:32:7d:36:e3:08:c8:8f: 5e:fa:08:fb:4e:50:44:62:f9:48:17:f8:d4:1d:89:81:2c:8e: c0:64:02:43:2f:13:7c:49:d5:f4:20:9e:1e:71:21:49:6b:80: 1a:c2:6f:97:61:c6:ea:a6:65:91:d4:2a:5d:d5:d9:ca:89:16: ab:36:0e:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkJYkNfa8lSrxtwDaRTsDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyNDM1N2JlMTk1ODc5NmIxMmM0MmI0ZjRjYWM1MWI4M2Rl OGZkMmIwHhcNMjYwMjA5MTgwMTE0WhcNMjYwMjEwMTgwMTE0WjAzMTEwLwYDVQQD EyhlZjlhNGE4ZGQ5ZGE5ZjVlNGY3YzA1OGViNGQyMDIxYTIxYmNhNmExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqoA6tmuXFai/2EXcpCEZKvUvT7QU txWwyQ4hi1hKqj6zngZZTj6kJlLgMgA16Y9NKRLUAt7R/uOt5mJB6G/mnZHSU9WV PPKLw3JhpxcpzkkSwLLZWUMktj7iw5nsIZsJcG9t4borelnNHP5BfIZV8QVMSR3Y l8jAtCh7WlCPfAMI3iTafCydOrsm+0edxFfjY1freRfjNuDnZp1t+247e6MeNw+j b6dPRbUnyiJNFW2QqpaV7jS2jL4QKhZBOjjj7csK2PuG1+tSHuC/H9pP+BkO8cL3 pUE8FCBSThtxbFbPMxd3zCSOc+BAY1+0mKVkEmk82fnyFfp01+aFQHe1qQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO+aSo3Z2p9eT3wFjrTSAhohvKahMB8GA1UdIwQY MBaAFKJDV74ZWHlrEsQrT0ysUbg96P0rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb2tOWHZobFllV3NTeEN0UFRLeFJ1RDNvX1NzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC8zNzM4ZTctYzkyOC00MTQxLTljZWMt M2YzY2MxZTU3M2ZkLzEvb2tOWHZobFllV3NTeEN0UFRLeFJ1RDNvX1NzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC8zNzM4ZTctYzkyOC00MTQxLTljZWMtM2YzY2MxZTU3M2Zk LzEvb2tOWHZobFllV3NTeEN0UFRLeFJ1RDNvX1NzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArMef6LW9 SSmRbmzrAyzP0ksuD7phItM7UqEe+jUHTarjo28ZpJD5gCpmhdt59MEw26PA7GZT PdjyLx12eGv1AuvYP78fyf+lW8N5anVZzvVbz6a49+/gcmSOFZwO6N2IINh9cY7O SdxypXoo0+N0A1EM0ea2EDzYLc+orEMjmslEtITpuurAj9VNUR0BX1PLaf1dJ+jN m9kGUTNkm19qr1Vs2rxBDYxk337jUWKLwIqs/0ije3MuPqfhKp9TUaAyfTbjCMiP XvoI+05QRGL5SBf41B2JgSyOwGQCQy8TfEnV9CCeHnEhSWuAGsJvl2HG6qZlkdQq XdXZyokWqzYOBw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:31:26 2026 by rpki-client